CVE-2024-35281

LOW Year: 2024
CVSS v3 Score
2.5
Low
Weakness Type
CWE-653
View all →

Vulnerability Description

An improper isolation or compartmentalization vulnerability [CWE-653] in FortiClientMac version 7.4.2 and below, version 7.2.8 and below, 7.0 all versions and FortiVoiceUCDesktop 3.0 all versions desktop application may allow an authenticated attacker to inject code via Electron environment variables.

Related Vulnerabilities

CVE-2024-53855

LOW
CVSS:1.9(Low)

Centurion ERP (Enterprise Rescource Planning) is a simple application developed to provide open source IT management with a large emphasis on the IT Service Management (ITSM) modules. A user who is au...

CWE-6532024

CVE-2024-49373

MEDIUM
CVSS:4.3(Medium)

No Fuss Computing Centurion ERP is open source enterprise resource planning (ERP) software. Prior to version 1.2.1, an authenticated user can view projects within organizations they are not apart of. ...

CWE-6532024

CVE-2025-21590

MEDIUM
CVSS:4.4(Medium)

An Improper Isolation or Compartmentalization vulnerability in the kernel of Juniper Networks Junos OS allows a local attacker with high privileges to compromise the integrity of the device. A local a...

CWE-6532025

CVE-2024-33768

CRITICAL
CVSS:9.8(Critical)

lunasvg v2.3.9 was discovered to contain a segmentation violation via the component composition_solid_source_over.

CWE-6532024

CVE-2025-1974

CRITICAL
CVSS:9.8(Critical)

A security issue was discovered in Kubernetes where under certain conditions, an unauthenticated attacker with access to the pod network can achieve arbitrary code execution in the context of the ingr...

CWE-6532025

CVE-2025-4083

CRITICAL
CVSS:9.1(Critical)

A process isolation vulnerability in Thunderbird stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended fr...

CWE-6532025